XMPP-BOSH-toolkit icon indicating copy to clipboard operation
XMPP-BOSH-toolkit copied to clipboard
verified publisher icon Marko-M

Add authentication support for SCRAM-SHA-1

Open vitorbrandao opened this issue 12 years ago • 0 comments

The SCRAM-SHA-1 mechanism is designed to provide (almost) the same capabilities as CRAM-MD5 and DIGEST-MD5 but use modern cryptographic techniques such as HMAC-SHA-1 hashing and PKCS#5 PBKDF2 key derivation. SCRAM-SHA-1 supports authorization identities. Like CRAM-MD5 and DIGEST-MD5, only a hashed password is transferred. Consequently, SCRAM-SHA-1 needs access to the correct password to verify the client response. Channel bindings are supported through the SCRAM-SHA-1-PLUS mechanism. [1]

[1] https://www.gnu.org/software/gsasl/manual/html_node/SCRAM_002dSHA_002d1.html

vitorbrandao avatar Jun 12 '13 13:06 vitorbrandao